I requested a UCC certificate from goDaddy listing domain names that include both our outward facing domain and our internal inward facing domain. We never registered the internal domain as it was just for inside our network.
GoDaddy is checking the ownership of both domains. They won’t issue the certificate with the inward domain names as we don’t own it. Will Exchange 2007 work when protected by a certificate that only lists our outside domain? We have what I believe is called Split DNS and actually have both domain names listed in our Forward and Reverse Lookup Zones.
Maybe I should keep the default certificate that Exchange 2007 automatically creates and only use the GoDaddy certificate for OWA, Autodiscover & ActiveSync? Would the new certificate request work for them? That would change our certificate request from:
cn=mobile.external.org, -DomainName autodiscover.external.org, castor.external.org, castor.internal.gov, autodiscover.internal.gov
cn=mobile.external.org, -DomainName autodiscover.external.org, castor.external.org, castor
Castor=our Exchange 2007 Server